Pete Markowsky
Pete Markowsky
We'd like to regularly scan the code in Santa's repository with codeql. This means adding https://github.com/github/codeql-action to a GitHub workflow.
@mlw showed me [hyperfine](https://github.com/sharkdp/hyperfine) and it'd be nice to have a benchmark workflow that runs our unit tests / benchmarks at least nightly if not as part of the CI.
Santa needs support for structured logging. Since protobuf is lingua franca of Google lets start there. ## Steps to Completion - [x] Add configuration to support logging to protobuf -...
After the KEXT is deprecated we should be able to move forward with some general cleanup and simplification. This issue is for tracking that work.
The sync protocol is currently HTTP/JSON. It'd be nice to be able to make this have a GRPC / Protobuf option as well as a formal specification for the protocol...
For larger deployments we'd like Santa to be able to export metrics for use with monitoring solutions like prometheus, or osquery.
There are a lot of parts of Santa that are responsive to the SNTConfigurators state change we need to make sure these are tested.
We should investigate whether or not Santa would inherit any performance benefits from switching to [TCMalloc](https://github.com/google/tcmalloc).
Now that Santa no longer needs an in-kernel cache implementation, we should replace the current implementation with one that is more full featured and implements LRU semantics. One potential option...
Log the bundle version in our execution log output when a binary is part of a bundle.